Switch to encrypted records in the TLSv1.3 server.

This adds code to perform key derivation and set the traffic keys once the ServerHello message has been sent, enabling encrypted records. ok beck@ tb@
author: jsing <> 2020-01-24 04:43:09 +0000
committer: jsing <> 2020-01-24 04:43:09 +0000
commit: 7d0ccc6a48e8176d58137096648f349ab3a1deb9 (patch)
tree: f271583fde3bbe55c9242508f9c0faa3bde9978d /src/lib/libssl/tls13_handshake.c
parent: 44f0fba669fd627fb05c843a0e2ade9b80701e87 (diff)
download: openbsd-7d0ccc6a48e8176d58137096648f349ab3a1deb9.tar.gz
openbsd-7d0ccc6a48e8176d58137096648f349ab3a1deb9.tar.bz2
openbsd-7d0ccc6a48e8176d58137096648f349ab3a1deb9.zip
1 files changed, 2 insertions, 1 deletions
diff --git a/src/lib/libssl/tls13_handshake.c b/src/lib/libssl/tls13_handshake.c
index 1157d6ecac..518073f4a1 100644
--- a/src/lib/libssl/tls13_handshake.c
+++ b/src/lib/libssl/tls13_handshake.c
@@ -1,4 +1,4 @@
-/*      $OpenBSD: tls13_handshake.c,v 1.41 2020/01/23 02:24:38 jsing Exp $      */
+/*      $OpenBSD: tls13_handshake.c,v 1.42 2020/01/24 04:43:09 jsing Exp $      */
 /*
 * Copyright (c) 2018-2019 Theo Buehler <tb@openbsd.org>
 * Copyright (c) 2019 Joel Sing <jsing@openbsd.org>
@@ -97,6 +97,7 @@ struct tls13_handshake_action state_machine[] = {
                .handshake_type = TLS13_MT_SERVER_HELLO,
                .sender = TLS13_HS_SERVER,
                .send = tls13_server_hello_send,
+                .sent = tls13_server_hello_sent,
                .recv = tls13_server_hello_recv,
        },
        [SERVER_HELLO_RETRY] = {
author	jsing <>	2020-01-24 04:43:09 +0000
committer	jsing <>	2020-01-24 04:43:09 +0000
commit	7d0ccc6a48e8176d58137096648f349ab3a1deb9 (patch)
tree	f271583fde3bbe55c9242508f9c0faa3bde9978d /src/lib/libssl/tls13_handshake.c
parent	44f0fba669fd627fb05c843a0e2ade9b80701e87 (diff)
download	openbsd-7d0ccc6a48e8176d58137096648f349ab3a1deb9.tar.gz openbsd-7d0ccc6a48e8176d58137096648f349ab3a1deb9.tar.bz2 openbsd-7d0ccc6a48e8176d58137096648f349ab3a1deb9.zip